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ABSTRACT 


The present invention provides a method and system for 
contacting a local computer on a private network over a 
public network using a specialized domain name server. In 
one embodiment, a remote computer initiates a request to 
communicate with a local computer on a private network 
using a domain name assigned to the local computer. Upon 
receiving the request to communicate, a specialized domain 
name server generates a subsequent request for the local 
computer to communicate with the specialized domain name 
server. Next, a network address translator generates a public 
network address for contacting the local computer and 
transmits the public network address to the specialized 
domain name server. The specialized domain name server 
then communicates the public network address to the remote 
computer which is then able to contact the local computer 
using the public network address. 
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METHOD AND SYSTEM FOR CONTACTING A 
DEVICE ON A PRIVATE NETWORK USING A 
SPECIALIZED DOMAIN NAME SERVER 

BACKGROUND OF THE INVENTION 
[0001] I. Field of the Invention 

[0002] The present invention relates generally to commu- 
nications between publicly ~ajod-privatejy n^^orked com--^> 
puters or data devices; and more particularly to a system and 
method foFimtiating, communications with com munication 
devices in * private J^ twor ^ from sources o utside bflhQ 
private-network; 3; 

[0003] II. Related Art 

[0004] If one were to look around most companies, uni- 
versities, and organizations today, you would find that each 
is filled with computers used to exchange electronic mail 
and browse the World Wide Web via the Internet. The 
Internet Protocol (IP) is the method most relied upon to 
allow computers to communicate with one another. IP 
addressing uses a 32-bit addressing scheme to identify each 
computer connected to the Internet (for example, 126.7.2.5). 
Consequently, there are only 2 32 unique IP addresses avail- 
able for use worldwide. Because of the limited availability 
of IP addresses, each company, university, and organization 
desiring Internet access is usually provided with only one of 
the 2 32 available Internet addresses. 

[0005] However, companies, universities, and organiza- 
tions alike maintain hundreds if not thousands of computers 
or other network connected devices. In order to utilize the IP 
addressing scheme and provide public network access to 
each workstation or connected device, local area (that is, 
private) networks are implemented. These private networks 
can be viewed as isolated device communities. Each com- 
puter (device) within an isolated community is assigned one 
of the 2 32 IP addresses. Any number of computers may have 
the same IP address provided they are in separate isolated 
communities (that is, private networks). However, no two 
connected devices within the same private network can have 
the same IP address. For this reason, the^^addressesj> 
assigned to computers connected to private networks cannot 
be^uTe^d~outsideT6f:th"e7privateTnetwo 
address -translation-is needed-to-facUit ate-commtmications- 
between~colnpuWs~loc1^ 

ticularly^h^n^u^h compli cations occur over the Internet . ~> 

[0006] Network address translation is used to map the IP 
addresses used by computers within local networks to one of 
the 2 32 publicly accessible IP addresses assigned to the 
company, university, or organization. For example, if a user 
on a computer within a private network initiates a request to 
communicate (for example, FTP, Telnet, or other connection 
involving the exchange of datagrams), it transmits data with 
an origination IP address of, for example, 129.98.3.5 (that is, 
its own IP address within the private network). A network 
address translator would then map the origination IP address 
to the publicly accessible IP address assigned to the orga- 
nization (for example, 128.97.6.3). Accordingly, the data- 
grams would be sent over the network with an origination IP 
address of 128.97.6.3 rather than 129.98.3.5 (the actual IP 
address of the computer sending the datagrams). Any 
responses to the request to communicate would conse- 
quently be directed to the IP address 128.97.6.3. The net- 


work address translator would then map the 128.97.6.3 
address to 129.98.3.5 and route the datagram to the appro- 
priate computer within the private network. In this way, the 
actuaHPaddre^~o£the.c^ 

r is^ne^r^is^losed "pitoHcly^When the exchange of informa- 
c tion'is~compleled, the mapping is cleared so that the publicly 
accessible IP address can be made available to another 
computer or device within the private network seeking to 
communicate externally. However, because the IP addresses 
of the computers within the private networks are not pub- 
licly known and since the mapping is not permanently 
maintained, this communications process does not work in 
the opposite direction (that is, when a computer outside the 
private network wants to initiate communication with a 
computer within the private network). In the present 
example, for instance, any request to communicate with a 
computer within the private network would be sent with a 
destination IP address of 128.97.6.3 (that is, the publicly 
accessible IP address). If a request was intended for the 
computer having IP address 129.98.3.5, there would be no 
way of routing the request appropriately because no map- 
ping (that is, association of the two IP addresses) has been 
made. 

[0007] Therefore what is needed is a method [and. system ~ 
for^generatingjt "publicly acge^jblelP^address-ifor-a-local'^ 
4evicV-WDCT4ti^ommunications request-is-mitiajedfroma 
'device oujsjdj^nhe priv ate'ne twdrlc^" 

SUMMARY OF THE INVENTION 

[0008] The present invention is a method and systemjor 
using^a-spe^ia^ 

for remote^mputetslo r other connect ed devjc^es WjgomQ 
mumcate with local^gomputer^^ 

^vatej^nem^fk.^ Connected devices could include for 
example personal computers, workstations, sensors, wire- 
less interfaces or portals, wireless communication devices, 
output devices such as printers, visual display devices, or 
other well known devices capable of communicating over a 
network. Th<r requester are initiated by the-remotejdeyicesjj 
andv identify-the-privately^etw^ 

puters, J>y_Jheir_domaux namesTIh processing communica- 
tions requests, the specialized domain name server, first 
receives over a public network, a request for a remote device 
to communicate with a local device located within the 
private ne twork. The^reque^usej^dojn^^ 
tonh^lo^aT^device rNextTlhT^^iaUzed^mainrname^ 
server ^ge^erates-a^ubsequent-request-for the local ;dj;yjcej(C> 
cornlnujn^^jw^^ This 
subsequent request is generated in response tcTreceiving the 
request for the remote device to communicate with the local 
device. 

[0009] The specialized domain name server then transmits 
the subsequent request to a network address translator 
(NAT). In response to receiving the subsequent request for 
the local device to communicate with the specializeddomain 
name server, ^"N^l^eTales^^ 
and sends it to the specialized domain name server. After 
receiving the public network address, the- specialized 
domain^name server generates^arespqnse to the request for 
the remote device torcommunicate with the locjd^eyicejThej 
response includes the pub lic n etwork address^forlttie^local 
device rFinally, the specialized domain name server trans- 
mitslhe generated response to the remote device. The 
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remote device is then able to communicate with the local- 
device using the public network address:} Further embodi- 
ments, features and advantages of the present invention, as 
well as the structure and operation of various embodiments 
of the present invention are described in detail below with 
reference to the accompanying drawings. 

BRIEF DESCRIPTION OF THE DRAWINGS 

[0010] The present invention is described with reference 
to the accompanying drawings. In the drawings, like refer- 
ence numbers generally indicate identical, functionally simi- 
lar, and/or structurally similar elements. The drawing in 
which an element first appears is indicated by the left-most 
digit or digits in the corresponding reference number. The 
accompanying figures illustrate the present invention and, 
together with the description, further serve to explain the 
principles of the invention and to enable a person skilled in 
the relevant art to make and use the invention. 

[0011] FIG. 1 illustrates an example illustration of a 
system for contacting a local device on a private network 
over a public network using a specialized domain name 
server according to an embodiment of the present invention. 

[0012] FIG. 2 is a block diagram illustration of an 
example specialized domain name server according to an 
embodiment of the present invention. 

[0013] FIG. 3 is a flowchart diagram illustrating an exem- 
plary method for using a specialized domain name server to 
provide a public network address for a local device on a 
private network to a remote device in accordance with an 
embodiment of the present invention. 

[0014] FIG. 4 is a block diagram implementation of the 
exemplary method illustrated in FIG. 3. 

DETAILED DESCRIPTION OF PREFERRED 
EMBODIMENTS 

[0015] The present invention is a method and system for 
using ajpecialized domain-name-server to -prqce^TrequesTs-^ 
for-remotdy^located devices'to' commjmicate jwith local — 
devices dn z a^pnvate ^etwork.^ The present invention is 
described irTteFms of examples contained herein, such as 
using computers connected to communicate over networks. 
This is for convenience only and is not intended to limit the 
application of the present invention. In fact, after reading the 
following description, it will be apparent to one skilled in the 
relevant art(s) how to implement the following invention in 
alternative embodiments, for example using wireless 
devices and interfaces to networks. 

[0016] The following terms are used throughout the 
remainder of this document. 

[0017] {The term "private network^^refers toXpropfietaryl? 
computer-network.such as a local area network (LAN), or_ 
intranet, to -which" computing devices are connected and^ 
( assigned network address^s Unique tojhe priyateinetwork.^ 

[0018] The term "public network" refers/to the lnterhet, orP 
other large^area or widely accessible IhetworkT* 

[0019] The term "local device" refers to a general purpose^? 
computer ~oFany other computer networked device located-^ 
within the private network. For example networked devices 
could include without limitation personal computers, work- 


stations, modems, transceiver modules, sensor elements or 
devices, wireless interfaces or portals, wireless communi- 
cation devices, output devices such as printers, facsimile 
machines, visual display devices, or other well known 
devices capable of communicating over a network. 


[0020] The term "remote device" refers to a general pur- 
pose computer ~br any other computer networked device 

"located outside the private network, such as those discussed 

~above for purposes of illustration. 

[0021] The term "user datagram protocol" (UDP) refers to 
a communications method for exchanging datagrams from 
one computer to another. 

[0022] The term "Network Address Translator" (NAT) -p 
refers to commercially available computer routers used to^ 
.assign public network addresses to local devicesr> 

[0023] FIG. 1 is a block diagram depicting system 100. 
System 100 is a typical operational environment in which 
the various features of the present invention can be imple- 
mented. It is an advantage of the invention that it may be 
implemented in many different ways in many environments 
and on many different computers or computer systems, or 
using a variety of networkable devices. System 100 is 
comprised of remote devices 105 A, 105B, and 105C 
(referred to collectively as 105). The remote devices 105 are 
connected to a public network (for example, the Internet) 
110. System 100 further comprises a specialized domain 
name server (SDNS) 115, a NAT 120, and a plurality of local 
devices 125A, 125B, and 125C (referred to collectively as 
125). The local devices 125 are connected to a private 
network (for example, intranet or LAN) 130. 

[0024] In the disclosed embodiment, remote devices 105 
and local devices 125 are shown as general purpose com- 
puters 105A and 125A; respectively, wireless communica- 
tion devices 107, 127 which are in communication with 
wireless network interfaces 105B, 125B, respectively; and 
FAX machine 105C and printer 125 C. 

[0025] When wireless communication devices are used 
^with the local or remote networks they are typically com- 
^municating with the network using a wireless interface 
device of some type. One example of a known interface is 
the use of specialized wireless transceivers for home-based 
computer networks. Other examples include, but are not 
limited to, wireless Ethernet connections provided by cir- 
cuits manufactured in accordance with the Institute of Elec- 
trical and Electronics Engineers (IEEE) standards referred to 
as 802.11, 802,11b, or 802.11a, a well known newer inter- 
face standard for wireless communications referred to as 
"Bluetooth." These types of devices provide portals or 
connections (nodes) to networks for wireless transfer of 
signals using devices connected physically to networks that 
operate as hubs or base stations for the wireless devices. 
Such apparatus or devices are known in the art. 

[0026] Alternatively, a variety of wireless telephones, 
PDAs, or modem type devices might be used to connect with 
local or remote networks, and may in turn be connected to 
a variety of computers including portable, notebook, or 
handheld types. These devices may be connected by com- 
municating with small hubs, specialized repeaters, or base 
stations in buildings connected to a network; or through one 
of various known wireless communication systems, cellular 
phone infrastructure, or wireless services which can provide 
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connections from base stations to the Interact or networked 
services. Examples of known cellular systems include the 
cellular Analog Advanced Mobile Phone System (AMPS), 
and the following digital cellular systems: Code Division 
Multiple Access (CDMA) spread spectrum systems; Time 
Division Multiple Access (TDMA) systems; and newer 
hybrid digital communication systems using both TDMA 
and CDMA technologies. A CDMA cellular system is 
described in the Telecommunications Industry Association/ 
Electronic Industries Association (TIA/EIA) Standard 
IS-95. Combined AMPS & CDMA systems are described in 
TIA/EIA Standard IS-98. Other communications systems 
are described in the International Mobile Telecommunica- 
tions System 2000/Universal Mobile Telecommunications 
System or IMT-2000/UM standards, covering what are 
commonly referred to as wideband CDMA (WCDMA), 
cdma2000 (such as cdma2000 Ix-rxtt cdma2000 lx, 3x, or 
MC standards, for example) or TD-SCDMA. Satellite based 
communication systems also utilize these or similar known 
standards. 

[0027] Local devices 125 are each assigned domain names 
and IP addresses that are unique to the private network 130 
in which they are located. Domain names and IP addresses 
are used to distinguish one computer on a network from 
another. In the present example, local device 125A has a 
domain name of PC125A@private_network.com and an IP 
address of 129.983J5. After reading this description, the 
configuration of local devices 125 and remote devices 105 
would be apparent to one of ordinary skill in the relevant 
art(s). 

[0028] As previously discussed, the IP addresses assigned 
to local devices 125 cannot be used outside of the private 
network. Therefore network address translation is needed to 
facilitate communications between remote devices 105 and 
local devices 125. NAT 120 can be any standard router 
configured to perform network address translation. Accord- 
ingly, NAT 120 is responsible for mapping the private 
network IP addresses for local devices 125 to one of the 2 32 
publicly accessible IP addresses. In the disclosed embodi- 
ment, NAT 120 generates (that is, maps) a public network 
address to one of the local devices 125 in response to 
receiving a request for the local device 125 to communicate 
with SDNS 115. SDNS 115 is responsible for providing 
remote devices 105 with the, NAT generated, public network 
addresses for local devices 125. A detailed description of 
SDNS 115 is provided with reference to FIG. 2. 

[0029] SDNS 115 can be used to implement computer 
program product embodiments of the present invention. The 
example embodiment of FIG. 2 is illustrative and not 
intended to limit the present invention. Here, SDNS 115 
represents any single or multi-processor computer. Single - 
threaded and multi-threaded computers can be used. Unified 
or distributed memory systems can be used. However, those 
skilled in the art will readily recognize that other types of 
control and command devices, dedicated network control- 
lers, routers, or specialized servers, as well as other known 
elements might be used to implement this function. 

[0030] SDNS 115 includes one or more processors, such 
as processor 204. One or more processors 204 can execute 
software and implement all or part of the features of the 
present invention described herein. Each processor 204 is 
connected to a communication infrastructure 202 (for 


example, a communications bus, cross-bar, or network). In 
the disclosed embodiment, updnre^ivin^Xre^e^for^e^ 
rOf-the-remote-devices-105-to commumcate wi^ojre^fthe^^} 
locd-de^cegg5r^ cessoT 204>is used to generate a 
sug^q uent~'req uest -for-one~-of - the-lc)cal-devices-125 tor ^> 
^communicat e withS DNS 115-Examples for which requests 
tc^olnmumcate migtiFbe~initiated include FTP, Telnet, 
Voice over IP (VOIP), or many other instances or processes 
involving the exchange of datagrams. The requests to com- 
municate specify the domain names assigned to each respec- 
tive local device 125A, 125B, and 125C. Processor 204 is 
further responsible for generating a response t^tfieTrequestl^ 
for'one-of-the-remotedevices405-to-communicate-withone7 
ofthej pcal devices 125fThis~generated r response Fincludesjft 
^publicLnetwork-address for one of the^l^^^^'ceTJL25.'.!jhe 
pubHc-network _ addre^is^e"nerated by NAT 120. After 
reading this description, it will become apparent to a person 
skilled in the relevant art(s) how to implement the invention 
using other computer systems and/or computer architec- 
tures, or firmware, software, or other control processors and 
devices. 

[0031] SDNS 115 also includes or is connected to a main 
memory 212, preferably in the form of random access 
memory (RAM), and can also include secondary memory 
214. In the exemplary embodiment, main memor y 212 is 

loaded with a lpitop'table ^stingrfhe privatfi n p.twn rl^. | 

domain nam£and IP ^a"^dress for eachTespective local device ^l 
125A^ 125B, and I25C. Secondary memory 214 can include, 
for example, a hard disk drive 216 and/or a removable 
storage drive 218, representing a floppy disk drive, a mag- 
netic tape drive, an optical disk drive, etc., each being 
devices the use of which is well understood in the art The 
removable storage drive 218 reads from and/or writes to a 
removable storage unit 220 in a well-known manner. 
Removable storage unit 220 represents a floppy disk, mag- 
netic tape, optical disk, etc., which is read by and written to 
by removable storage drive 218. As will be appreciated, the 
removable storage unit 220 includes a computer usable 
storage medium having stored therein computer software 
and/or data. 

[0032] In alternative embodiments, secondary memory 
214 may include other similar means for allowing computer 
programs or other instructions to be loaded into SDNS 115. 
Such means can include, for example, a removable storage 
unit 224 and an interface 222. Examples can include a 
program cartridge and cartridge interface (such as that found 
in video game devices), a removable memory chip (such as 
an EPROM, or PROM) and associated socket, and other 
removable storage units 224 and interfaces 222 which allow 
software and data to be transferred from the removable 
storage unit 224 to SDNS 115. 

[0033] SDNSIll STna yalso includeoneor-more commu^ 
^nicatic^-interfaces-and 
In the disclosed embodimentrSDNS 115 includes - two 
communications interfaces: first communications interface 
230 and second communications interface 240. In the dis- 
closed embodiment, SDNS 115 further includes two com- 
munications paths: first communications path 235 and sec- 
ond communications path 245. 

[0034] rJ%sr_commum 
ware^j^daja-toj^be^ 

externaJjLejdces_oy of 
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first communications path 235. In the disclosed embodi- 
ment, tfirsn^mmunications -in to 


removable storage drive 218, hard drive 216, or communi- 
cations interface 230. Alternatively, the computer program 
requests-for on^f;the_remote-devices-105-to-communicate— — product may be downloaded to SDNS 115 over communi- 
cations path 235, which can include a wireless portion 
and/or a wireless or optical conductor portion. The control 
logic (software), when executed by the one or more proces- 
sors 204, causes the processors) 204 to perform the func- 
tions of the invention as described herein. 


-with-one-of-the-local-devices- 125. These requests are 


transmitted over public network 110 using first communi- 
cations path 235. First- commu nications interface^ 230 "is S 
further-used for receivin^a pubhc network address rgenep^/ 
atedforlo^^^^ 


network:address:is:received over pubUc networM10^ing^> 
firs't=communications path 235/ Further^ first communica- 
tions interface~230 isalso used for transmitting the response 
generated by processor 204. This response is transmittedtoi^ 
the remotjjlevice^iOSjhaj^ 

,nicateTwith-one of the local devices 125. Furthermore, this 
'responsejsjrarismitted^ovcr first communications path 235? 
Examples of firsTcommunications interface 230 can include 
a modem, a network interface (such as Ethernet card), a 
communications port, etc. Software and data transferred 
over first communications path 235 are in the form of signals 
which can be electronic, electromagnetic, optical or other 
signals capable of being received by first communications 
interface 230. 

[0035] Se cond-commun i cations mt erfac^2 40aUows^ ft^ 
ware and-daTaj^ 

^xtern^l'deVic^-over the private-network^lSp. In the dis- 
closed"embo'dim^nT7^ecolidlx)mmunications interface 240 
is used for transmitting the generated subsequent request for 
pne-of-t he local d e vices' 125 tolcommunicate Jwith~SDNS7 
IlSrThis transmission is sent over the private network 130 
v^a-second-communications-pattr^tS. Examples of second 
co^muriicatiorii interface~240 can include a modem, a 
network interface (such as Ethernet card), a wireless net- 
work interface or transfer link, a communications port, etc. 
Software and data transferred over second communications 
path 245 are in the form of signals which can be electronic, 
electromagnetic, optical or other signals capable of being 
received by second communications interface 240. 

[0036] The present invention can be implemented using 
software running (that is, executing) in an environment 
similar to that described above with respect to FIG. 2. In this 
document, the term "computer program product" is used to 
generally refer to removable storage unit 220, a hard disk 
installed in hard disk drive 218, or a carrier wave or other 
signal carrying software over a communication path 235 
(wireless link or cable) to communication interface 230. A 
computer useable medium can include magnetic media, 
optical media, or other recordable media, or media that 
transmits a carrier wave. These computer program products 
are means for providing software to SDNS 115. 

[0037] Computer programs (also called computer control 
logic) are stored in main memory 212 and/or secondary 
memory 214. Computer programs can also be received 
through communications interface 230. Such computer pro- 
grams, when executed, enable SDNS 115 to perform the 
features of the present invention as discussed herein. In 
particular, the computer programs, when executed, enable 
the processor 204 to perform the features of the present 
invention. Accordingly, such computer programs represent 
controllers of SDNS 115. 

[0038] In an embodiment where the invention is imple- 
mented using software, the software may be stored in a 
computer program product and loaded into SDNS 115 using 


[0039] In another embodiment, the invention is imple- 
mented primarily in firmware and/or hardware using, for 
example, hardware components such as application specific 
integrated circuits (ASICs). Implementation of a hardware 
state machine so as to perform the functions described 
herein will be apparent to a person skilled in the relevant art. 

[0040] FIG. 3 is a flowchart of a method 300 (steps 
305-330) showmg.a.process-for-generating-a;pu^ 
rsibl£lPjalklrje^sJbrJocal 125 An accordance with arP 

embodiment of'thepresenrin>^ionT 

[0041] To begin, in step 305;SD NS115 receives a requesQ 
£foro^on_he^remote devices 105 to communicate with one^p 
of -the lo^aTdevices 125.7Tfiejeg uest to commun icate is T> 
received_over^the -public hetwork-interf ace card 117. As 
discussed above; thejequest toxommunicate„ identifies the 
.local-devic e 12 5J>y its d omain jiameJln accordance with 
'standaTd domain name service protocol, several name serv- 
ers might be searched until a name server recognizing the 
domain name specified in the request to communicate is 
found. A name server recognizes a domain name when a 
corresponding entry for the domain name is found in the 
name server's lookup table. In this example, SDNS 115 
would process the request to communicate because it rec- 
ognizes the domain name of the local device 125. 

[0042] Next, in step 310, SDNSril5^ne7aTes~a-subseT 
quent request for the localjtoyrce_125 to communicate withs 
SDNS^TlbgeneTatTthe subsequent request, SDNS "115 
searches a memory or storage element, such one having a 
lookup table, for thejdomain . name of the local device 1^5 

spftri fi ert_™- * hp -mm mi i m'ra ^ns rerpif^r and Hln>" A< r 
jocal device ; FcVrresponding IP address -within the^ri vate^J^ 
network 13J )r The^local device 's IP address within the 
private network 130 is used as the originating IP address in 
the generated subsequent request to communicate. The des- 
tination IP address is the IP address of SDNS 115. In this 
way, it appears that thejocal'devic^isTin itiatin g^a requesUo7 
commu ^ate-exte maUyr; 

[0043] Next, in step 315, the generated subsequent request 
for the local device to communicate with SDNS 115 is 
transmitted to NAT 120 over the private network 130 using 
the private network interface card 118. Because the request 
appears to have been originated by one of the local devices 
125, upon receiving the generated subsequent request, NAT 
120 will map one of the 2 32 publicly accessible IP addresses 
to the IP address for the local device 125 specified in the 
generated subsequent request. NAT 120 will then forward a 
packet to the destination address designated in the request 
(that is, SDNS 115), The packet will show the origination 
address to be one of the 2 32 publicly accessible IP addresses 
assigned to the local device by NAT 120 and the destination 
address as that of SDNS 115. 

[0044] In step 320, SDNS 115 receives the packet from 
NAT 120. This packet is received over the public network 
130 using the public network interface card 117. 
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[0045] In step 325, SDNS 115 generates a response to the 
request received in step 305 (that is, for the remote device 
to communicate with a local device). The response indicates 
the origination address as the publicly accessible IP address 
provided in the packet received in step 320 and the desti- 
nation address as the IP address of the remote device 105. 

[0046] Finally, in step_330 the~generated~response~is~l 
transffitte^IIoZthe^remote-device— 105-that"initiated~th"e^ 
request to communicate. In4hi^ O 
able'lainltiatercom^ 

using- itswn.IP^address as the^rigination address and a \_ 
publicly : 1iccessible4P-addres 
105-f^thcdestination. — — — r 

[0047] FIG. 4 shows an example implementation of 
method 300. Event 1 depicts remote computer 105A issuing 
a request to communicate with local computer 125 A. In this 
example, the IP address for the remote computer 105A (that 
is, origination address) is 973.65.2.5 and the destination 
address of the local computer 125A is 
< TC125A@private_network.com , \ This request is commu- 
nicated over the Internet. 

[0048] In Event 2 (see steps 305-315, FIG. 3), SDNS 115 
receives the request. In response, SDNS 115 searches a 
memory or lookup table and d etermines that the correspond-^ 
,in&-^ private network IP address for _ 


nicate with local computer 125A, or the two wireless devices 
105B, 125B could communicate with each other, and so 
forth. 

[0051] While various embodiments of the present inven- 
tion have been described above, it should be understood that 
they have been presented by way of example only, and not 
limitation. Thus, the breadth and scope of the present 
invention should not be limited by any of the above- 
described exemplary embodiments, but should be define 
only in accordance with the following claims and their 
equivalents. 


PC125A@private network.com is 129.983.5. A ccordingly, 
a subsequent request for the local computer 125A to com- _ 
municate wi th SDNS 115 is generated. In th is example, ^e_ 
subse quent request will snow an ori^iMtion~address^qf , 
li9:98:3:5: (thT^iy^teTnet^ 

. destination address of 126.35.6.2 (the IP address of SD NS— 
115)r~ThisrequesHs then-transmitted to inai 120 overthe 
private network 130 using the private network interface card 
118. 


[0049] In Event 3, NAT 120 has received the subsequent 
request to communicate and in response ayign ed4-28:97;6r3 n 
to the localcomputer-125A. ThisIPaddresir is-oneof-the-2 32— y 
publiclyraccessiblOPladdresses._ Accordingly, a packet 
liaving-128:97;673-as-an-origination / ' address and 126.35.6.2 
as a destination address (IP address of SDNS 115) is sent out 
over the public network 110. 

[0050] Finally, in Event 4, (see steps 320-330, FIG. 3) 
SDNS 115 has received the packet transmitted in Event 3. 
This packet is received by SDNS 115 through public net- 
work interface card 117. In response to receiving the packet, 
SDNS 115 prepares a response to the communications 
request represented by Event 1. This response is then 
transmitted to the remote computer 105A. In this example, 
the response indicates 128.97.6.3 as the origination address 
(the IP address of jthe local computer4.25Aassigned by NAT? 
120) ^and~973:65^5 -as ^- d^tmation address (the-IP> 
addressrof-merrempte^^pmerriOSAT that initiated "thcJ> 

req uest — to commu nicate with — locals- computer^ 

Pei25A@private-network:com) '. The— remote— com puter-^ 
105A can-nowcommunicatewiththe local computer_125A-^ 
using-the^pubhcly^ccessi^ 

SDNS415rin this-way,-the-remojexomputef:i05A^is ablelo~^P 
imtiate^^mmumcati^ 

..Using the -same r process-steps computer-105A could initiate^ 
( communications' with local wireless~device 125B or local 
printer 125C, or remote FAX machine 105C could commu- 


What I claim as my invention is: 

1. A method for contacting a local device on a private 
network over a public network using a Network Address 
Translator (NAT), comprising the steps of: 

initiating from a remote device a request to communicate 
with a local device on a private network, wherein said 
request to communicate uses a domain name assigned 
to said local device; 

receiving said request to communicate at a specialized 
domain name server and in response, generating a 
subsequent request for the local device to communicate 
with said specialized domain name server; 

receiving said subsequent request at the NAT and in 
response, generating a public network address for con- 
tacting the local device; 

transmitting said public network address for contacting 
the local device to said specialized domain name 
server; 

communicating said public network address for contact- 
ing the local device to the remote device; and 

contacting the local device from the remote device using 
said public network address. 

2. A method for providing a public network address for a 
local device on a private network to a remote device using 
a specialized domain name server, comprising the steps of: 

receiving at the specialized domain name server, a request 
for the local device to communicate with the remote 
device, wherein said request identifies the local device 
using a domain name; 


generating a subsequent request for the local device to 
communicate with the specialized domain name server; 

transmitting said subsequent request from the specialized 
domain name server to a network address translator 
(NAT); 

receiving a public network address for the local device 
generated by said NAT in response to receiving said 
subsequent request; 

generating a response to said request for the local device 
to communicate with the remote device, the generated 
response including said public network address for the 
local device; and 

transmitting said generated response to the remote device. 
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3. A system for communicating with a local device on a 
private network from a remote device, over a public net- 
work, comprising: 

a remote device from which a request to communicate 
with a local device on a private network is initiated, 
wherein said request to communicate uses a domain 
name assigned to said local device; 

a specialized domain name server that generates a request 
for said local device to communicate with said special- 
ized domain name server in response to receiving said 
request to communicate; and 

a network address translator (NAT) that receives said 
request for said local device to communicate with said 
specialized domain name server and communicates a 
response to said specialized domain name server, said 
response identifying a public network address assigned 
for communicating with said local device. 

4. The system of claim 3, wherein said specialized domain 
name server communicates said public network address to 
said remote device. 

5. The system of claim 4, wherein said remote device 
communicates with said local device using said public 
network address. 

6. The system of claim 3, wherein said specialized domain 
name server is provided with a first communications inter- 
face that communicates with the public network and a 
second communications interface that communicates with 
the private network. 

7. The system of claim 6, wherein said first communica- 
tions interface receives said initiated request to communi- 
cate with the local device. 

8. The system of claim 6, wherein said specialized domain 
name server communicates said subsequent request to said 
NAT using said second communications interface. 

9. The system of claim 6, wherein said NAT communi- 
cates said response to said specialized domain name server 
using said first communications interface. 

10. The system of claim 6, wherein said specialized 
domain name server communicates said public network 
address to said remote device using said first communica- 
tions interface. 

11. The system of claim 6, wherein said remote device 
uses said public network address to communicate with said 
local device. 

12. A specialized domain name server for providing a 
public network address for a local device on a private 
network to a remote device, comprising: 

means for receiving over a public network, a request for 
the remote device to communicate with the local 
device, wherein said request uses a domain name 
assigned to the local device; 


means for generating a subsequent request for the local 
device to communicate with the specialized domain 
name server in response to receiving said request for 
the remote device to communicate with the local 
device; 

means for transmitting said subsequent request from the 
specialized domain name server to a network address 
translator (NAT); 

means for receiving a public network address for the local 
device generated by said NAT in response to receiving 
said subsequent request for the local device to com- 
municate with the specialized domain name server; 

means for generating a response to said request for the 
remote device to communicate with the local device, 
the response including said public network address for 
the local device; and 

means for transmitting said generated response to the 
remote device. 

13. The specialized domain name server of claim 12, 
wherein said means for receiving a request for the remote 
device to communicate with the local device, said means for 
receiving a public network address for the local device, and 
said means for transmitting said generated response to the 
remote device is a first communications interface. 

14. The specialized domain name server of claim 12, 
wherein said means for transmitting said subsequent request 
from the specialized domain name server to a network 
address translator (NAT)comprises a second communica- 
tions interface. 

15. A specialized domain name server for providing a 
public network address for a local device on a private 
network to a remote device, comprising: 

a first communications interface that receives a request for 
the remote device to communicate with the local 
device, wherein said request uses a domain name 
assigned to the local device; 

a processor that generates a subsequent request for the 
local device to communicate with the specialized 
domain name server in response to receiving said 
request for the remote device to communicate with the 
local device; and 

a second communications interface that transmits said 
subsequent request for the local device to communicate 
with the specialized domain name server to a network 
address translator and receives a public network 
address for the local device from said network address 
translator, wherein said public network address is sub- 
sequently provided to the local device using said first 
communications interface. 

* * * * * 
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